Goldex Privacy Policy

Last updated: June 3, 2026

NovaForge LTD operates the NaoBet platform and manages personal data in accordance with applicable offshore privacy frameworks and internal data protection standards. This privacy policy explains how personal data is collected, processed, stored, shared and protected when Australian players access Goldex casino, sportsbook and related services. By creating an account, making deposits, placing bets or browsing the platform, users accept the practices outlined in this document.

This policy applies to all interactions with Goldex services, including account registration, payment processing, bonus participation, identity verification, customer support and marketing communications. Users who do not agree with these practices should discontinue use of the platform immediately.

Definitions and Interpretation

This section clarifies key terms used throughout the privacy policy. Understanding these definitions helps users interpret how data is collected, processed and protected across the platform.

Core Terminology

Personal data refers to any information that can identify an individual user, including names, email addresses, phone numbers, payment details, device identifiers and behavioural data. Processing includes collection, storage, use, disclosure, transfer and deletion of personal data. The controller is NovaForge LTD, the operator responsible for determining how personal data is processed.

User and Service Terms

Account refers to the user profile created during registration, which stores personal details, transaction history, preferences and verification status. Device includes any hardware used to access Goldex services, such as desktops, laptops, smartphones and tablets. Service encompasses all platform features, including pokies, live casino, table games, jackpots, sportsbook, live betting, virtual sports, esports and promotional tools.

Personal Data Collection

Goldex collects personal data to operate the platform, process payments, enforce compliance and deliver services. Data is collected directly during registration, automatically during browsing and through interactions with account features and customer support.

Identity and Contact Information

During registration, users provide their full name, date of birth, email address, phone number, residential address and country. This data is required to verify age, prevent duplicate accounts and comply with licensing conditions. Age confirmation ensures all users meet the minimum requirement of 18 years. Address details are used for identity verification, payment processing and geolocation checks.

Payment and Transaction Data

Goldex collects payment method details, including card numbers, bank account information and transaction identifiers. Payment ownership proof is required during KYC verification to confirm that funds originate from the account holder. Transaction history includes deposit amounts, withdrawal requests, AUD limits, method-specific fees and payment provider responses. This data is used to process payouts, detect fraud, enforce AML controls and comply with regulatory requests.

Technical and Usage Data

Technical data is collected automatically and includes IP address, browser type, operating system, device identifiers, screen resolution and geolocation coordinates. Usage data tracks pages visited, games played, bet history, session duration, bonus activity and navigation patterns. This information supports platform functionality, security monitoring, analytics and personalised content delivery.

Purpose of Data Processing

Personal data is processed for specific operational, legal and marketing purposes. Each processing activity is tied to a legitimate need and supports platform functionality, compliance or user engagement.

Service Provision and Account Management

Personal data is used to create accounts, authenticate users, process deposits and withdrawals, apply AUD limits and enforce one account per player rules. Identity verification supports KYC procedures triggered by deposit reviews, withdrawal requests, payment checks and risk events. Address proof documents must be submitted within 30 days after document requests, and verification reviews can take up to 10 days after full submission.

Compliance and Legal Obligations

Goldex processes personal data to comply with the Anjouan remote gambling licence ALSI-152406028-FI2, AML frameworks and fraud prevention standards. KYC documents include identity proofs, residence confirmations, payment ownership evidence and transaction history. Enhanced due diligence applies when risk signals involve large deposits, unusual activity, account mismatches or bonus abuse patterns. Data is also used to respond to regulator inquiries and enforce age restrictions.

Marketing and Promotions

Personal data supports delivery of bonus offers, reload promotions, cashback programmes, sports cashback, accumulator boosts and VIP rewards. Marketing communications are sent via email and account notifications. Users can opt out of promotional messages through account settings or support channels. Data is also used to personalise content, recommend games and deliver targeted promotions based on activity patterns.

Legal Basis for Processing

NovaForge LTD processes personal data under four legal grounds: consent, contractual necessity, legal compliance and legitimate interests. Each processing activity is linked to a specific legal basis that justifies data use.

Consent and Contractual Necessity

Users provide consent by accepting the privacy policy during registration. Consent can be withdrawn by closing the account, though past processing remains lawful. Contractual necessity applies when data is required to deliver services, such as processing deposits, enabling gameplay, applying wagering requirements and paying out winnings. Without this data, the platform cannot fulfil its obligations under the terms and conditions.

Legal Compliance and Legitimate Interests

Processing is required to comply with licensing obligations, AML regulations, age verification laws and fraud prevention standards. Legitimate interests cover security monitoring, risk management, analytics, platform improvement and customer support. These interests are balanced against user privacy rights, and data is processed only when necessary and proportionate to the purpose.

Data Sharing and Disclosure

Personal data is shared with third parties only when necessary for service delivery, compliance or legal obligations. Goldex does not sell personal data to external parties for marketing purposes.

Service Providers and Processors

Payment processors handle deposits, withdrawals and AUD cashier transactions using Visa, Mastercard and Interac e-Transfer. Game providers such as Pragmatic Play, Red Tiger, Microgaming, Evoplay, OnAir, Hacksaw, Spinomenal, Amusnet, Yggdrasil, BGaming, Betsoft, Playson and Stakelogic receive anonymised gameplay data to deliver pokies, live casino and table games. Hosting and cloud storage providers manage servers and databases under contractual data protection obligations.

Affiliates and Marketing Partners

Personal data may be shared with affiliated entities within the NovaForge LTD operator cluster for account management, fraud prevention and promotional coordination. Marketing partners receive anonymised traffic data to optimise campaigns and measure performance. No identifiable personal data is transferred without user consent or legal justification.

Regulators and Legal Authorities

Data is disclosed to the Gaming Board of Anjouan and other regulatory bodies when required by law or requested during compliance audits. Law enforcement agencies may receive data in response to valid legal orders, fraud investigations or criminal proceedings. Data is also shared when necessary to enforce platform rules, prevent abuse or protect user safety.

Data Retention and Deletion

Personal data is retained only as long as necessary for operational, legal and compliance purposes. Retention periods vary depending on data type, user activity and regulatory requirements.

Retention Periods

Account data is retained for the duration of active use and for up to five years after account closure to comply with AML and licensing obligations. Transaction records are stored for seven years to support audit trails and financial reporting. KYC documents are retained for five years after verification or account closure, whichever is later. Marketing data is deleted within two years of inactivity or opt-out requests.

Deletion and Anonymisation

Users can request account deletion through customer support channels, though certain data must be retained to meet legal obligations. Deleted accounts are anonymised, and personally identifiable information is removed from active systems. Usage data is anonymised after retention periods expire and may be retained for statistical purposes without identifying individuals.

User Rights Over Personal Data

Australian players have rights to access, correct, delete, restrict and transfer their personal data. These rights can be exercised by contacting customer support or submitting requests through the account dashboard.

Access and Rectification

Users can request a copy of all personal data held by Goldex, including account details, transaction history, KYC documents and communication records. Requests are processed within 30 days, and data is delivered in a structured, machine-readable format. Rectification allows users to correct inaccurate or incomplete information. Updates to email addresses, phone numbers or addresses can be made directly in account settings.

Erasure and Restriction

Users can request deletion of personal data when it is no longer necessary for the original purpose, consent has been withdrawn or processing is unlawful. Deletion requests are subject to legal retention obligations, and certain data must be kept for compliance purposes. Restriction allows users to limit processing while disputes are resolved or data accuracy is verified.

Data Portability and Objection

Data portability enables users to receive their personal data in a portable format and transfer it to another service provider. This right applies to data provided with consent or under contractual necessity. Users can object to processing based on legitimate interests, including marketing communications and profiling. Objections are honoured unless overriding legal grounds apply.

Security Measures and Data Protection

Goldex implements technical and organisational measures to protect personal data from unauthorised access, disclosure, alteration and loss. Security controls are designed to reduce risks and maintain data integrity.

Encryption and Secure Storage

All data transmitted between user devices and Goldex servers is encrypted using SSL protocols. Payment information is encrypted at rest and tokenised to prevent exposure during transactions. Passwords are hashed using industry-standard algorithms and are never stored in plain text. Secure storage infrastructure includes firewalls, intrusion detection systems and regular vulnerability assessments.

Access Control and Monitoring

Access to personal data is restricted to authorised personnel who require it for operational or compliance purposes. Role-based permissions limit exposure to sensitive information, and access logs are monitored for suspicious activity. Fraud prevention systems analyse account behaviour, payment patterns and login attempts to detect anomalies. Users who trigger risk signals may face account reviews, verification requests or temporary restrictions.

Limitations of Security

No system can guarantee absolute security, and users share responsibility for protecting their credentials. Account sharing, weak passwords and VPN or proxy use can trigger reviews or compromise account safety. Users should enable two-factor authentication where available and report suspicious activity immediately.

Cookies and Tracking Technologies

Goldex uses cookies and similar technologies to improve user experience, personalise content, track performance and support marketing. Users can control cookie preferences through browser settings and account options.

Types of Cookies

Cookie Management

Users can disable non-essential cookies through browser settings, including Chrome, Safari, Firefox and Edge. Blocking cookies may limit access to personalised features, saved preferences and certain gameplay elements. Cookies are stored for varying periods depending on type and purpose, with session cookies expiring after logout and persistent cookies lasting up to 12 months.

Tracking and Targeting

Goldex uses pixel tags, web beacons and device fingerprinting to track user behaviour across sessions and devices. This data supports fraud detection, account security and marketing attribution. Users who prefer not to be tracked can use privacy-focused browsers, disable third-party cookies or enable Do Not Track settings, though this may affect platform functionality.

Third-Party Links and External Services

Goldex may include links to external websites, payment providers and social media platforms. These third parties operate under their own privacy policies, and Goldex is not responsible for their data practices.

External Website Disclaimer

Clicking on external links redirects users away from Goldex and into environments governed by separate terms and privacy frameworks. Users should review the privacy policies of external sites before submitting personal data. Goldex does not control, endorse or assume liability for third-party content, data collection or security measures.

Payment Provider Privacy

Payment processors such as Visa, Mastercard and Interac e-Transfer handle transaction data under their own privacy standards. Goldex shares only the information necessary to complete deposits and withdrawals. Users should consult payment provider policies to understand how card details, bank information and transaction history are managed.

Children and Age Restrictions

Goldex prohibits underage gambling and does not knowingly collect personal data from individuals under 18 years. Age verification is enforced through registration checks, KYC procedures and document review.

Age Verification Process

During registration, users confirm they are 18 years or older and provide a date of birth. KYC verification requires identity documents that confirm age and legal capacity to gamble. Accounts found to belong to minors are closed immediately, and deposits are refunded where possible. Winnings may be voided if underage use is detected.

Parental Controls and Reporting

Parents and guardians who discover that a minor has created an account should contact customer support immediately. Goldex will investigate, close the account and delete associated personal data in accordance with legal obligations. Additional safeguards include device-based parental controls and browser restrictions that limit access to gambling sites.

Policy Updates and Changes

This privacy policy may be updated to reflect changes in platform features, regulatory requirements or data processing practices. Users are responsible for reviewing updates regularly to stay informed.

Notification Methods

Significant changes to the privacy policy are communicated via email, account notifications and website banners. The effective date at the top of this document indicates the most recent update. Continued use of Goldex services after an update constitutes acceptance of the revised policy.

Review and Compliance

NovaForge LTD reviews this privacy policy periodically to ensure alignment with licensing obligations, industry standards and user expectations. Updates may address new technologies, expanded services or enhanced security measures. Users who object to changes can close their accounts before the new policy takes effect.

Contact and Privacy Requests

Users can submit privacy requests, report concerns or seek clarification by contacting Goldex customer support. Requests are processed within 30 days, and users receive confirmation once action is complete.

Support Channels

Live chat is available for immediate assistance with privacy questions, data access requests and account settings. The help centre includes guides on managing preferences, deleting accounts and controlling marketing communications. Users should provide their account details and specify the nature of the request to expedite processing.

Data Protection Inquiries

Requests related to data access, rectification, erasure, restriction, portability or objection should be submitted through customer support with clear instructions. Goldex may request additional verification to confirm identity before releasing or modifying personal data. Response times vary depending on request complexity, but standard inquiries are resolved within 30 days.